Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix: stack-buffer-overflow in usbg_f_foo_attr_val processing. Changed… #72

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
28 changes: 12 additions & 16 deletions include/usbg/function/hid.h
Original file line number Diff line number Diff line change
Expand Up @@ -56,11 +56,6 @@ union usbg_f_hid_attr_val {
unsigned int subclass;
};

#define USBG_F_HID_UINT_TO_ATTR_VAL(WHAT) \
USBG_TO_UNION(usbg_f_hid_attr_val, protocol, WHAT)

#define USBG_F_HID_RDESC_TO_ATTR_VAL(WHAT) \
USBG_TO_UNION(usbg_f_hid_attr_val, report_desc, WHAT)
/**
* @brief Cast from generic function to hid function
* @param[in] f function to be converted to hid funciton.
Expand Down Expand Up @@ -137,7 +132,7 @@ int usbg_f_hid_get_attr_val(usbg_f_hid *hf, enum usbg_f_hid_attr attr,
* @return 0 on success usbg_error if error occurred.
*/
int usbg_f_hid_set_attr_val(usbg_f_hid *hf, enum usbg_f_hid_attr attr,
union usbg_f_hid_attr_val val);
const union usbg_f_hid_attr_val *val);

/**
* @brief Get the minor and major of corresponding character device
Expand Down Expand Up @@ -173,8 +168,9 @@ static inline int usbg_f_hid_get_protocol(usbg_f_hid *hf,
static inline int usbg_f_hid_set_protocol(usbg_f_hid *hf,
unsigned int protocol)
{
return usbg_f_hid_set_attr_val(hf, USBG_F_HID_PROTOCOL,
USBG_F_HID_UINT_TO_ATTR_VAL(protocol));

union usbg_f_hid_attr_val val = {.protocol = protocol};
return usbg_f_hid_set_attr_val(hf, USBG_F_HID_PROTOCOL, &val);
}

/**
Expand All @@ -199,8 +195,8 @@ static inline int usbg_f_hid_get_report_desc(usbg_f_hid *hf,
static inline int usbg_f_hid_set_report_desc(usbg_f_hid *hf,
struct usbg_f_hid_report_desc report_desc)
{
return usbg_f_hid_set_attr_val(hf, USBG_F_HID_REPORT_DESC,
USBG_F_HID_RDESC_TO_ATTR_VAL(report_desc));
union usbg_f_hid_attr_val val = {.report_desc = report_desc};
return usbg_f_hid_set_attr_val(hf, USBG_F_HID_REPORT_DESC, &val);
}

/**
Expand Down Expand Up @@ -242,8 +238,8 @@ static inline int usbg_f_hid_set_report_desc_raw(usbg_f_hid *hf,
.len = len,
};

return usbg_f_hid_set_attr_val(hf, USBG_F_HID_REPORT_DESC,
USBG_F_HID_RDESC_TO_ATTR_VAL(report_desc));
union usbg_f_hid_attr_val val = {.report_desc = report_desc};
return usbg_f_hid_set_attr_val(hf, USBG_F_HID_REPORT_DESC, &val);
}

/**
Expand All @@ -268,8 +264,8 @@ static inline int usbg_f_hid_get_report_length(usbg_f_hid *hf,
static inline int usbg_f_hid_set_report_length(usbg_f_hid *hf,
unsigned int report_length)
{
return usbg_f_hid_set_attr_val(hf, USBG_F_HID_REPORT_LENGTH,
USBG_F_HID_UINT_TO_ATTR_VAL(report_length));
union usbg_f_hid_attr_val val = {.report_length = report_length};
return usbg_f_hid_set_attr_val(hf, USBG_F_HID_REPORT_LENGTH, &val);
}

/**
Expand All @@ -294,8 +290,8 @@ static inline int usbg_f_hid_get_subclass(usbg_f_hid *hf,
static inline int usbg_f_hid_set_subclass(usbg_f_hid *hf,
unsigned int subclass)
{
return usbg_f_hid_set_attr_val(hf, USBG_F_HID_SUBCLASS,
USBG_F_HID_UINT_TO_ATTR_VAL(subclass));
union usbg_f_hid_attr_val val = {.subclass = subclass};
return usbg_f_hid_set_attr_val(hf, USBG_F_HID_SUBCLASS, &val);
}

#ifdef __cplusplus
Expand Down
35 changes: 13 additions & 22 deletions include/usbg/function/midi.h
Original file line number Diff line number Diff line change
Expand Up @@ -53,15 +53,6 @@ union usbg_f_midi_attr_val {
unsigned int qlen;
};

#define USBG_F_MIDI_INT_TO_ATTR_VAL(WHAT) \
USBG_TO_UNION(usbg_f_midi_attr_val, index, WHAT)

#define USBG_F_MIDI_UINT_TO_ATTR_VAL(WHAT) \
USBG_TO_UNION(usbg_f_midi_attr_val, qlen, WHAT)

#define USBG_F_MIDI_CCHAR_PTR_TO_ATTR_VAL(WHAT) \
USBG_TO_UNION(usbg_f_midi_attr_val, id, WHAT)

/**
* @brief Cast from generic function to midi function
* @param[in] f function to be converted to midi funciton.
Expand Down Expand Up @@ -126,7 +117,7 @@ int usbg_f_midi_get_attr_val(usbg_f_midi *mf, enum usbg_f_midi_attr attr,
* @return 0 on success usbg_error if error occurred.
*/
int usbg_f_midi_set_attr_val(usbg_f_midi *mf, enum usbg_f_midi_attr attr,
union usbg_f_midi_attr_val val);
const union usbg_f_midi_attr_val *val);

/**
* @brief Get the index value of MIDI adapter
Expand All @@ -148,8 +139,8 @@ static inline int usbg_f_midi_get_index(usbg_f_midi *mf, int *index)
*/
static inline int usbg_f_midi_set_index(usbg_f_midi *mf, int index)
{
return usbg_f_midi_set_attr_val(mf, USBG_F_MIDI_INDEX,
USBG_F_MIDI_INT_TO_ATTR_VAL(index));
union usbg_f_midi_attr_val val = {.index = index};
return usbg_f_midi_set_attr_val(mf, USBG_F_MIDI_INDEX, &val);
}

/**
Expand Down Expand Up @@ -188,8 +179,8 @@ int usbg_f_midi_get_id_s(usbg_f_midi *mf, char *buf, int len);
*/
static inline int usbg_f_midi_set_id(usbg_f_midi *mf, const char *id)
{
return usbg_f_midi_set_attr_val(mf, USBG_F_MIDI_ID,
USBG_F_MIDI_CCHAR_PTR_TO_ATTR_VAL(id));
union usbg_f_midi_attr_val val = {.id = id};
return usbg_f_midi_set_attr_val(mf, USBG_F_MIDI_ID, &val);
}

/**
Expand All @@ -212,8 +203,8 @@ static inline int usbg_f_midi_get_in_ports(usbg_f_midi *mf, unsigned *in_ports)
*/
static inline int usbg_f_midi_set_in_ports(usbg_f_midi *mf, unsigned in_ports)
{
return usbg_f_midi_set_attr_val(mf, USBG_F_MIDI_IN_PORTS,
USBG_F_MIDI_UINT_TO_ATTR_VAL(in_ports));
union usbg_f_midi_attr_val val = {.in_ports = in_ports};
return usbg_f_midi_set_attr_val(mf, USBG_F_MIDI_IN_PORTS, &val);
}

/**
Expand All @@ -236,8 +227,8 @@ static inline int usbg_f_midi_get_out_ports(usbg_f_midi *mf, unsigned *out_ports
*/
static inline int usbg_f_midi_set_out_ports(usbg_f_midi *mf, unsigned out_ports)
{
return usbg_f_midi_set_attr_val(mf, USBG_F_MIDI_OUT_PORTS,
USBG_F_MIDI_UINT_TO_ATTR_VAL(out_ports));
union usbg_f_midi_attr_val val = {.out_ports = out_ports};
return usbg_f_midi_set_attr_val(mf, USBG_F_MIDI_OUT_PORTS, &val);
}

/**
Expand All @@ -264,8 +255,8 @@ static inline int usbg_f_midi_get_buflen(usbg_f_midi *mf, int *buflen)
*/
static inline int usbg_f_midi_set_buflen(usbg_f_midi *mf, unsigned buflen)
{
return usbg_f_midi_set_attr_val(mf, USBG_F_MIDI_BUFLEN,
USBG_F_MIDI_UINT_TO_ATTR_VAL(buflen));
union usbg_f_midi_attr_val val = {.buflen = buflen};
return usbg_f_midi_set_attr_val(mf, USBG_F_MIDI_BUFLEN, &val);
}

/**
Expand All @@ -288,8 +279,8 @@ static inline int usbg_f_midi_get_qlen(usbg_f_midi *mf, unsigned *qlen)
*/
static inline int usbg_f_midi_set_qlen(usbg_f_midi *mf, unsigned qlen)
{
return usbg_f_midi_set_attr_val(mf, USBG_F_MIDI_QLEN,
USBG_F_MIDI_UINT_TO_ATTR_VAL(qlen));
union usbg_f_midi_attr_val val = {.qlen = qlen};
return usbg_f_midi_set_attr_val(mf, USBG_F_MIDI_QLEN, &val);
}

#ifdef __cplusplus
Expand Down
30 changes: 11 additions & 19 deletions include/usbg/function/ms.h
Original file line number Diff line number Diff line change
Expand Up @@ -56,14 +56,6 @@ union usbg_f_ms_lun_attr_val {
const char *file;
};

#define USBG_F_MS_LUN_BOOL_TO_ATTR_VAL(WHAT) \
USBG_TO_UNION(usbg_f_ms_lun_attr_val, cdrom, WHAT)

#define USBG_F_MS_LUN_CCHAR_PTR_TO_ATTR_VAL(WHAT) \
USBG_TO_UNION(usbg_f_ms_lun_attr_val, file, WHAT)



/**
* @brief Cast from generic function to mass storage function
* @param[in] f function to be converted to ms funciton.
Expand Down Expand Up @@ -157,7 +149,7 @@ int usbg_f_ms_get_lun_attr_val(usbg_f_ms *mf, int lun_id,
*/
int usbg_f_ms_set_lun_attr_val(usbg_f_ms *mf, int lun_id,
enum usbg_f_ms_lun_attr lattr,
const union usbg_f_ms_lun_attr_val val);
const union usbg_f_ms_lun_attr_val *val);

/**
* @brief Get the value which determines if lun is visible as a cdrom
Expand All @@ -183,8 +175,8 @@ static inline int usbg_f_ms_get_lun_cdrom(usbg_f_ms *mf, int lun_id,
static inline int usbg_f_ms_set_lun_cdrom(usbg_f_ms *mf, int lun_id,
bool cdrom)
{
return usbg_f_ms_set_lun_attr_val(mf, lun_id, USBG_F_MS_LUN_CDROM,
USBG_F_MS_LUN_BOOL_TO_ATTR_VAL(cdrom));
union usbg_f_ms_lun_attr_val val = {.cdrom = cdrom};
return usbg_f_ms_set_lun_attr_val(mf, lun_id, USBG_F_MS_LUN_CDROM, &val);
}

/**
Expand All @@ -209,8 +201,8 @@ static inline int usbg_f_ms_get_lun_ro(usbg_f_ms *mf, int lun_id, bool *ro)
*/
static inline int usbg_f_ms_set_lun_ro(usbg_f_ms *mf, int lun_id, bool ro)
{
return usbg_f_ms_set_lun_attr_val(mf, lun_id, USBG_F_MS_LUN_RO,
USBG_F_MS_LUN_BOOL_TO_ATTR_VAL(ro));
union usbg_f_ms_lun_attr_val val = {.ro = ro};
return usbg_f_ms_set_lun_attr_val(mf, lun_id, USBG_F_MS_LUN_RO, &val);
}

/**
Expand Down Expand Up @@ -239,8 +231,8 @@ static inline int usbg_f_ms_get_lun_nofua(usbg_f_ms *mf, int lun_id,
static inline int usbg_f_ms_set_lun_nofua(usbg_f_ms *mf, int lun_id,
bool nofua)
{
return usbg_f_ms_set_lun_attr_val(mf, lun_id, USBG_F_MS_LUN_NOFUA,
USBG_F_MS_LUN_BOOL_TO_ATTR_VAL(nofua));
union usbg_f_ms_lun_attr_val val = {.nofua = nofua};
return usbg_f_ms_set_lun_attr_val(mf, lun_id, USBG_F_MS_LUN_NOFUA, &val);
}

/**
Expand All @@ -267,8 +259,8 @@ static inline int usbg_f_ms_get_lun_removable(usbg_f_ms *mf, int lun_id,
static inline int usbg_f_ms_set_lun_removable(usbg_f_ms *mf, int lun_id,
bool removable)
{
return usbg_f_ms_set_lun_attr_val(mf, lun_id, USBG_F_MS_LUN_REMOVABLE,
USBG_F_MS_LUN_BOOL_TO_ATTR_VAL(removable));
union usbg_f_ms_lun_attr_val val = {.removable = removable};
return usbg_f_ms_set_lun_attr_val(mf, lun_id, USBG_F_MS_LUN_REMOVABLE, &val);
}

/**
Expand Down Expand Up @@ -313,8 +305,8 @@ int usbg_f_ms_get_lun_file_s(usbg_f_ms *mf, int lun_id,
static inline int usbg_f_ms_set_lun_file(usbg_f_ms *mf, int lun_id,
const char *file)
{
return usbg_f_ms_set_lun_attr_val(mf, lun_id, USBG_F_MS_LUN_FILE,
USBG_F_MS_LUN_CCHAR_PTR_TO_ATTR_VAL(file));
union usbg_f_ms_lun_attr_val val = {.file = file};
return usbg_f_ms_set_lun_attr_val(mf, lun_id, USBG_F_MS_LUN_FILE, &val);
}

/**
Expand Down
34 changes: 14 additions & 20 deletions include/usbg/function/net.h
Original file line number Diff line number Diff line change
Expand Up @@ -56,12 +56,6 @@ union usbg_f_net_attr_val {
unsigned int protocol;
};

#define USBG_F_NET_ETHER_ADDR_TO_ATTR_VAL(WHAT) \
USBG_TO_UNION(usbg_f_net_attr_val, dev_addr, WHAT)

#define USBG_F_NET_INT_TO_ATTR_VAL(WHAT) \
USBG_TO_UNION(usbg_f_net_attr_val, qmult, WHAT)

/**
* @brief Cast from generic function to net function
* @param[in] f function to be converted to net funciton.
Expand Down Expand Up @@ -125,7 +119,7 @@ int usbg_f_net_get_attr_val(usbg_f_net *nf, enum usbg_f_net_attr attr,
* @return 0 on success usbg_error if error occurred.
*/
int usbg_f_net_set_attr_val(usbg_f_net *nf, enum usbg_f_net_attr attr,
const union usbg_f_net_attr_val val);
const union usbg_f_net_attr_val *val);

/**
* @brief Get the value of device side MAC address
Expand All @@ -136,7 +130,7 @@ int usbg_f_net_set_attr_val(usbg_f_net *nf, enum usbg_f_net_attr attr,
static inline int usbg_f_net_get_dev_addr(usbg_f_net *nf,
struct ether_addr *addr)
{
union usbg_f_net_attr_val val = { .dev_addr = *addr, };
union usbg_f_net_attr_val val = {.dev_addr = *addr};
return usbg_f_net_get_attr_val(nf, USBG_F_NET_DEV_ADDR, &val);
}

Expand All @@ -149,8 +143,8 @@ static inline int usbg_f_net_get_dev_addr(usbg_f_net *nf,
static inline int usbg_f_net_set_dev_addr(usbg_f_net *nf,
const struct ether_addr *addr)
{
return usbg_f_net_set_attr_val(nf, USBG_F_NET_DEV_ADDR,
USBG_F_NET_ETHER_ADDR_TO_ATTR_VAL(*addr));
union usbg_f_net_attr_val val = {.dev_addr = *addr};
return usbg_f_net_set_attr_val(nf, USBG_F_NET_DEV_ADDR, &val);
}

/**
Expand All @@ -175,8 +169,8 @@ static inline int usbg_f_net_get_host_addr(usbg_f_net *nf,
static inline int usbg_f_net_set_host_addr(usbg_f_net *nf,
const struct ether_addr *addr)
{
return usbg_f_net_set_attr_val(nf, USBG_F_NET_HOST_ADDR,
USBG_F_NET_ETHER_ADDR_TO_ATTR_VAL(*addr));
union usbg_f_net_attr_val val = {.host_addr = *addr};
return usbg_f_net_set_attr_val(nf, USBG_F_NET_HOST_ADDR, &val);
}

/**
Expand Down Expand Up @@ -226,8 +220,8 @@ static inline int usbg_f_net_get_qmult(usbg_f_net *nf, int *qmult)
*/
static inline int usbg_f_net_set_qmult(usbg_f_net *nf, int qmult)
{
return usbg_f_net_set_attr_val(nf, USBG_F_NET_QMULT,
USBG_F_NET_INT_TO_ATTR_VAL(qmult));
union usbg_f_net_attr_val val = {.qmult = qmult};
return usbg_f_net_set_attr_val(nf, USBG_F_NET_QMULT, &val);
}

/**
Expand All @@ -250,8 +244,8 @@ static inline int usbg_f_net_get_class(usbg_f_net *nf, unsigned int *class_)
*/
static inline int usbg_f_net_set_class(usbg_f_net *nf, unsigned int class_)
{
return usbg_f_net_set_attr_val(nf, USBG_F_NET_CLASS,
USBG_F_NET_INT_TO_ATTR_VAL(class_));
union usbg_f_net_attr_val val = {.class_ = class_};
return usbg_f_net_set_attr_val(nf, USBG_F_NET_CLASS, &val);
}

/**
Expand All @@ -274,8 +268,8 @@ static inline int usbg_f_net_get_subclass(usbg_f_net *nf, int *subclass)
*/
static inline int usbg_f_net_set_subclass(usbg_f_net *nf, unsigned int subclass)
{
return usbg_f_net_set_attr_val(nf, USBG_F_NET_SUBCLASS,
USBG_F_NET_INT_TO_ATTR_VAL(subclass));
union usbg_f_net_attr_val val = {.subclass = subclass};
return usbg_f_net_set_attr_val(nf, USBG_F_NET_SUBCLASS, &val);
}

/**
Expand All @@ -298,8 +292,8 @@ static inline int usbg_f_net_get_protocol(usbg_f_net *nf, int *protocol)
*/
static inline int usbg_f_net_set_protocol(usbg_f_net *nf, unsigned int protocol)
{
return usbg_f_net_set_attr_val(nf, USBG_F_NET_PROTOCOL,
USBG_F_NET_INT_TO_ATTR_VAL(protocol));
union usbg_f_net_attr_val val = {.protocol = protocol};
return usbg_f_net_set_attr_val(nf, USBG_F_NET_PROTOCOL, &val);
}

#ifdef __cplusplus
Expand Down
Loading